Creating a User-Defined Role
Junos Space Network Management Platform provides read-only predefined roles—that is, Super Administrator or User Administrator—that you can use to create users to perform tasks that their roles permit. You can also create read/write user-defined roles that determine user responsibilities and access privileges for your network. You can modify and delete only user-defined roles that you create. You cannot modify or delete predefined roles.
To create a user-defined role:
- On the Junos Space Network Management Platform user interface,
select Role Based Access Control > Roles.
The Roles page appears.
- Click the Create Role icon on the menu bar.
The Create Role page appears, allowing you to select workspaces and associated tasks from all deployed applications.
- In the Title text box, type a user-defined
The role title cannot exceed 32 characters. The title can contain letters and numbers and can include a hyphen (-), underscore (_), or period (.). Also, the title cannot start with a space.
- In the Description text box, type a user-defined
The role description cannot exceed 256 characters. The description can contain letters and numbers and can include a hyphen (-), underscore (_), period (.), or comma (,).
- Select an application workspace from the application selection
Mouse over an application workspace icon to view the application and workspace name. You can select one or more workspaces for each user-defined role. An expandable and collapsible tree of associated tasks appears below the selection ribbon.
- From the task tree, select the specific tasks that you
want for the user-defined role. All application workspace tasks are
selected by default in the task tree.
Only the application workspace node that is currently being edited is expanded in the Task Summary pane; previously selected workspace nodes are collapsed. You can expand other workspace nodes manually.
Selecting the top node or workspace selects or deselects the whole task tree. Selecting any task node automatically selects all tasks under the task node. Selecting any task node automatically selects its parent and grandparent.
Only the currently active task tree appears in the Task Summary pane.
- Click Create.
The user-defined role is created, is saved, and appears on the Roles inventory page.
Scroll or search to view it.
You cannot create or save a user-defined role when the workspace tasks are not selected. Junos Space displays the following error message:
Task tree selection cannot be empty.
Creation of a role generates an audit log entry.